Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-tnrm-85fu-ufhb

Summary crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec

Aliases

alias	CVE-2025-22866

Fixed_packages

url	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=ppc64le&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armhf&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armhf&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armv7&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=riscv64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=s390x&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=aarch64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=s390x&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=aarch64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armhf&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armv7&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86_64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=riscv64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armv7&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86_64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=loongarch64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=ppc64le&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armv7&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armv7&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=s390x&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=s390x&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=s390x&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=loongarch64&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=ppc64le&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=riscv64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=riscv64&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=loongarch64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=ppc64le&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86_64&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=aarch64&distroversion=edge&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=x86_64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=x86_64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=aarch64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=aarch64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/go@1.23.6-r0?arch=armhf&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.23.6-r0%3Farch=armhf&distroversion=v3.21&reponame=community

url	pkg:deb/debian/golang-1.24@1.24~rc3-1?distro=trixie
purl	pkg:deb/debian/golang-1.24@1.24~rc3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.24@1.24~rc3-1%3Fdistro=trixie

url pkg:deb/debian/golang-1.24@1.24.4-1?distro=trixie

purl pkg:deb/debian/golang-1.24@1.24.4-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1aty-87pz-5yb8

vulnerability	VCID-254d-pjst-c7hx

vulnerability	VCID-3nqb-6mna-jyb4

vulnerability	VCID-5n8q-zcds-gyen

vulnerability	VCID-5q9b-a7c4-1yht

vulnerability	VCID-7n3z-vwk2-3ydr

vulnerability	VCID-9ky3-s2vk-cuge

vulnerability	VCID-br2f-7ux9-hkhg

vulnerability	VCID-bv1f-bee8-cbek

vulnerability	VCID-csmt-e61b-tued

vulnerability	VCID-dp1t-v58b-43du

vulnerability	VCID-dtt9-gmqf-nbaf

vulnerability	VCID-eyev-qpgs-hfbx

vulnerability	VCID-hay4-q9m3-ekdj

vulnerability	VCID-je6z-v5qw-ufew

vulnerability	VCID-mvsr-c2yh-mbdq

vulnerability	VCID-q9yj-ze4x-qyfr

vulnerability	VCID-rvbr-nser-sfe7

vulnerability	VCID-sb3w-x3yv-ffft

vulnerability	VCID-t2dr-6dz3-7qgt

vulnerability	VCID-usyf-s559-pkgx

vulnerability	VCID-wchc-as62-1fae

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.24@1.24.4-1%3Fdistro=trixie

url	pkg:deb/debian/golang-1.24@1.24.13-2?distro=trixie
purl	pkg:deb/debian/golang-1.24@1.24.13-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.24@1.24.13-2%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/acm-cli@container-v2.13?arch=4-14

purl pkg:rpm/redhat/acm-cli@container-v2.13?arch=4-14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-cli@container-v2.13%3Farch=4-14

url pkg:rpm/redhat/acm-cluster-permission@container-v2.13?arch=4-11

purl pkg:rpm/redhat/acm-cluster-permission@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-cluster-permission@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/acm-governance-policy-addon-controller@container-v2.13?arch=4-12

purl pkg:rpm/redhat/acm-governance-policy-addon-controller@container-v2.13?arch=4-12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-governance-policy-addon-controller@container-v2.13%3Farch=4-12

url pkg:rpm/redhat/acm-governance-policy-framework-addon@container-v2.13?arch=4-13

purl pkg:rpm/redhat/acm-governance-policy-framework-addon@container-v2.13?arch=4-13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-governance-policy-framework-addon@container-v2.13%3Farch=4-13

url pkg:rpm/redhat/acm-grafana@container-v2.13?arch=4-11

purl pkg:rpm/redhat/acm-grafana@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-grafana@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/acm-multicluster-observability-addon@container-v2.13?arch=4-14

purl pkg:rpm/redhat/acm-multicluster-observability-addon@container-v2.13?arch=4-14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-multicluster-observability-addon@container-v2.13%3Farch=4-14

url pkg:rpm/redhat/acm-must-gather@container-v2.13?arch=4-13

purl pkg:rpm/redhat/acm-must-gather@container-v2.13?arch=4-13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-must-gather@container-v2.13%3Farch=4-13

url pkg:rpm/redhat/acm-operator-bundle@container-v2.13?arch=4-22

purl pkg:rpm/redhat/acm-operator-bundle@container-v2.13?arch=4-22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-operator-bundle@container-v2.13%3Farch=4-22

url pkg:rpm/redhat/acm-prometheus-config-reloader@container-v2.13?arch=4-7

purl pkg:rpm/redhat/acm-prometheus-config-reloader@container-v2.13?arch=4-7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-prometheus-config-reloader@container-v2.13%3Farch=4-7

url pkg:rpm/redhat/acm-prometheus-operator@container-v2.13?arch=4-7

purl pkg:rpm/redhat/acm-prometheus-operator@container-v2.13?arch=4-7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-prometheus-operator@container-v2.13%3Farch=4-7

url pkg:rpm/redhat/acm-search-indexer@container-v2.13?arch=4-12

purl pkg:rpm/redhat/acm-search-indexer@container-v2.13?arch=4-12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-search-indexer@container-v2.13%3Farch=4-12

url pkg:rpm/redhat/acm-search-v2-api@container-v2.13?arch=4-11

purl pkg:rpm/redhat/acm-search-v2-api@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-search-v2-api@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/acm-search-v2-operator@container-v2.13?arch=4-11

purl pkg:rpm/redhat/acm-search-v2-operator@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-search-v2-operator@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/acm-siteconfig@container-v2.13?arch=4-9

purl pkg:rpm/redhat/acm-siteconfig@container-v2.13?arch=4-9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-siteconfig@container-v2.13%3Farch=4-9

url pkg:rpm/redhat/acm-volsync-addon-controller@container-v2.13?arch=4-9

purl pkg:rpm/redhat/acm-volsync-addon-controller@container-v2.13?arch=4-9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acm-volsync-addon-controller@container-v2.13%3Farch=4-9

url pkg:rpm/redhat/cert-policy-controller@container-v2.13?arch=4-13

purl pkg:rpm/redhat/cert-policy-controller@container-v2.13?arch=4-13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cert-policy-controller@container-v2.13%3Farch=4-13

url pkg:rpm/redhat/cluster-backup-operator@container-v2.13?arch=4-11

purl pkg:rpm/redhat/cluster-backup-operator@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cluster-backup-operator@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/config-policy-controller@container-v2.13?arch=4-13

purl pkg:rpm/redhat/config-policy-controller@container-v2.13?arch=4-13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/config-policy-controller@container-v2.13%3Farch=4-13

url pkg:rpm/redhat/console@container-v2.13?arch=4-13

purl pkg:rpm/redhat/console@container-v2.13?arch=4-13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/console@container-v2.13%3Farch=4-13

url pkg:rpm/redhat/delve@1.24.1-1?arch=el10_0

purl pkg:rpm/redhat/delve@1.24.1-1?arch=el10_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1jxb-fv1g-2kdu

vulnerability	VCID-fk74-ghxp-w3g9

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/delve@1.24.1-1%3Farch=el10_0

url pkg:rpm/redhat/delve@1.24.1-2?arch=el9_5

purl pkg:rpm/redhat/delve@1.24.1-2?arch=el9_5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1jxb-fv1g-2kdu

vulnerability	VCID-fk74-ghxp-w3g9

vulnerability	VCID-hfxt-nnd8-dfc8

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/delve@1.24.1-2%3Farch=el9_5

url pkg:rpm/redhat/endpoint-monitoring-operator@container-v2.13?arch=4-8

purl pkg:rpm/redhat/endpoint-monitoring-operator@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/endpoint-monitoring-operator@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/golang@1.23.6-2?arch=el9_5

purl pkg:rpm/redhat/golang@1.23.6-2?arch=el9_5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1jxb-fv1g-2kdu

vulnerability	VCID-fk74-ghxp-w3g9

vulnerability	VCID-hfxt-nnd8-dfc8

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang@1.23.6-2%3Farch=el9_5

url pkg:rpm/redhat/golang@1.23.7-1?arch=el10_0

purl pkg:rpm/redhat/golang@1.23.7-1?arch=el10_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1jxb-fv1g-2kdu

vulnerability	VCID-fk74-ghxp-w3g9

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang@1.23.7-1%3Farch=el10_0

url pkg:rpm/redhat/governance-policy-propagator@container-v2.13?arch=4-12

purl pkg:rpm/redhat/governance-policy-propagator@container-v2.13?arch=4-12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/governance-policy-propagator@container-v2.13%3Farch=4-12

url pkg:rpm/redhat/grafana-dashboard-loader@container-v2.13?arch=4-8

purl pkg:rpm/redhat/grafana-dashboard-loader@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/grafana-dashboard-loader@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/insights-client@container-v2.13?arch=4-11

purl pkg:rpm/redhat/insights-client@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/insights-client@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/insights-metrics@container-v2.13?arch=4-11

purl pkg:rpm/redhat/insights-metrics@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/insights-metrics@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/klusterlet-addon-controller@container-v2.13?arch=4-10

purl pkg:rpm/redhat/klusterlet-addon-controller@container-v2.13?arch=4-10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/klusterlet-addon-controller@container-v2.13%3Farch=4-10

url pkg:rpm/redhat/kube-rbac-proxy@container-v2.13?arch=4-10

purl pkg:rpm/redhat/kube-rbac-proxy@container-v2.13?arch=4-10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kube-rbac-proxy@container-v2.13%3Farch=4-10

url pkg:rpm/redhat/kube-state-metrics@container-v2.13?arch=4-12

purl pkg:rpm/redhat/kube-state-metrics@container-v2.13?arch=4-12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kube-state-metrics@container-v2.13%3Farch=4-12

url pkg:rpm/redhat/memcached-exporter@container-v2.13?arch=4-7

purl pkg:rpm/redhat/memcached-exporter@container-v2.13?arch=4-7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/memcached-exporter@container-v2.13%3Farch=4-7

url pkg:rpm/redhat/metrics-collector@container-v2.13?arch=4-8

purl pkg:rpm/redhat/metrics-collector@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/metrics-collector@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/multicloud-integrations@container-v2.13?arch=4-9

purl pkg:rpm/redhat/multicloud-integrations@container-v2.13?arch=4-9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicloud-integrations@container-v2.13%3Farch=4-9

url pkg:rpm/redhat/multiclusterhub-operator@container-v2.13?arch=4-12

purl pkg:rpm/redhat/multiclusterhub-operator@container-v2.13?arch=4-12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multiclusterhub-operator@container-v2.13%3Farch=4-12

url pkg:rpm/redhat/multicluster-observability-operator@container-v2.13?arch=4-8

purl pkg:rpm/redhat/multicluster-observability-operator@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-observability-operator@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/multicluster-operators-application@container-v2.13?arch=4-8

purl pkg:rpm/redhat/multicluster-operators-application@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-operators-application@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/multicluster-operators-channel@container-v2.13?arch=4-8

purl pkg:rpm/redhat/multicluster-operators-channel@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-operators-channel@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/multicluster-operators-subscription-operator@container-v2.13?arch=4-11

purl pkg:rpm/redhat/multicluster-operators-subscription-operator@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/multicluster-operators-subscription-operator@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/node-exporter@container-v2.13?arch=4-8

purl pkg:rpm/redhat/node-exporter@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/node-exporter@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/observatorium@container-v2.13?arch=4-8

purl pkg:rpm/redhat/observatorium@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/observatorium@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/observatorium-operator@container-v2.13?arch=4-13

purl pkg:rpm/redhat/observatorium-operator@container-v2.13?arch=4-13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/observatorium-operator@container-v2.13%3Farch=4-13

url pkg:rpm/redhat/prometheus@container-v2.13?arch=4-9

purl pkg:rpm/redhat/prometheus@container-v2.13?arch=4-9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/prometheus@container-v2.13%3Farch=4-9

url pkg:rpm/redhat/prometheus-alertmanager@container-v2.13?arch=4-7

purl pkg:rpm/redhat/prometheus-alertmanager@container-v2.13?arch=4-7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/prometheus-alertmanager@container-v2.13%3Farch=4-7

url pkg:rpm/redhat/rbac-query-proxy@container-v2.13?arch=4-8

purl pkg:rpm/redhat/rbac-query-proxy@container-v2.13?arch=4-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rbac-query-proxy@container-v2.13%3Farch=4-8

url pkg:rpm/redhat/rhc@1:0.2.6-3?arch=el9_6

purl pkg:rpm/redhat/rhc@1:0.2.6-3?arch=el9_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fk74-ghxp-w3g9

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhc@1:0.2.6-3%3Farch=el9_6

url pkg:rpm/redhat/search-collector@container-v2.13?arch=4-11

purl pkg:rpm/redhat/search-collector@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/search-collector@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/submariner-addon@container-v2.13?arch=4-11

purl pkg:rpm/redhat/submariner-addon@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/submariner-addon@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/thanos@container-v2.13?arch=4-11

purl pkg:rpm/redhat/thanos@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thanos@container-v2.13%3Farch=4-11

url pkg:rpm/redhat/thanos-receive-controller@container-v2.13?arch=4-11

purl pkg:rpm/redhat/thanos-receive-controller@container-v2.13?arch=4-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pq8-1dxx-37gj

vulnerability	VCID-fr74-wcxv-quam

vulnerability	VCID-tnrm-85fu-ufhb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thanos-receive-controller@container-v2.13%3Farch=4-11

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-22866.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-22866.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-22866

reference_id

reference_type

scores

value	0.00022
scoring_system	epss
scoring_elements	0.05855
published_at	2026-04-02T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.06048
published_at	2026-04-21T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05888
published_at	2026-04-04T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.0588
published_at	2026-04-07T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05918
published_at	2026-04-08T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05957
published_at	2026-04-09T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05937
published_at	2026-04-11T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05928
published_at	2026-04-12T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.0592
published_at	2026-04-13T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05885
published_at	2026-04-16T12:55:00Z

value	0.00022
scoring_system	epss
scoring_elements	0.05897
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-22866

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-22866
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-22866

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2344219
reference_id	2344219
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2344219

reference_url

https://go.dev/cl/643735

reference_id

643735

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T20:40:17Z/

url

https://go.dev/cl/643735

reference_url

https://go.dev/issue/71383

reference_id

71383

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T20:40:17Z/

url

https://go.dev/issue/71383

reference_url

https://pkg.go.dev/vuln/GO-2025-3447

reference_id

GO-2025-3447

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T20:40:17Z/

url

https://pkg.go.dev/vuln/GO-2025-3447

reference_url	https://access.redhat.com/errata/RHSA-2025:16113
reference_id	RHSA-2025:16113
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:16113

reference_url	https://access.redhat.com/errata/RHSA-2025:2789
reference_id	RHSA-2025:2789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2789

reference_url	https://access.redhat.com/errata/RHSA-2025:3773
reference_id	RHSA-2025:3773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3773

reference_url	https://access.redhat.com/errata/RHSA-2025:3922
reference_id	RHSA-2025:3922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3922

reference_url	https://access.redhat.com/errata/RHSA-2025:4666
reference_id	RHSA-2025:4666
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4666

reference_url	https://access.redhat.com/errata/RHSA-2025:4667
reference_id	RHSA-2025:4667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4667

reference_url	https://access.redhat.com/errata/RHSA-2025:4810
reference_id	RHSA-2025:4810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4810

reference_url	https://access.redhat.com/errata/RHSA-2025:7326
reference_id	RHSA-2025:7326
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7326

reference_url	https://access.redhat.com/errata/RHSA-2025:7466
reference_id	RHSA-2025:7466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7466

reference_url	https://access.redhat.com/errata/RHSA-2025:8670
reference_id	RHSA-2025:8670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8670

reference_url	https://usn.ubuntu.com/7574-1/
reference_id	USN-7574-1
reference_type
scores
url	https://usn.ubuntu.com/7574-1/

reference_url

https://groups.google.com/g/golang-announce/c/xU1ZCHUZw3k

reference_id

xU1ZCHUZw3k

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T20:40:17Z/

url

https://groups.google.com/g/golang-announce/c/xU1ZCHUZw3k

Weaknesses

cwe_id	200
name	Exposure of Sensitive Information to an Unauthorized Actor
description	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

cwe_id	208
name	Observable Timing Discrepancy
description	Two separate operations in a product require different amounts of time to complete, in a way that is observable to an actor and reveals security-relevant information about the state of the product, such as whether a particular operation was successful or not.

Exploits

Severity_range_score 4.0 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tnrm-85fu-ufhb

Vulnerability Instance